Topic
Open proxy
About: Open proxy is a research topic. Over the lifetime, 8 publications have been published within this topic receiving 101 citations.
Papers
3 Dec 2018
TL;DR: In this paper, the authors conduct a comprehensive study of open proxies, encompassing more than 107,000 listed open proxies and 13M proxy requests over a 50-day period.
Abstract: Open proxies forward traffic on behalf of any Internet user. Listed on open proxy aggregator sites, they are often used to bypass geographic region restrictions or circumvent censorship. Open proxies sometimes also provide a weak form of anonymity by concealing the requestor's IP address. To better understand their behavior and performance, we conducted a comprehensive study of open proxies, encompassing more than 107,000 listed open proxies and 13M proxy requests over a 50 day period. While previous studies have focused on malicious open proxies' manipulation of HTML content to insert/modify ads, we provide a more broad study that examines the availability, success rates, diversity, and also (mis)behavior of proxies. Our results show that listed open proxies suffer poor availability---more than 92% of open proxies that appear on aggregator sites are unresponsive to proxy requests. Much more troubling, we find numerous examples of malicious open proxies in which HTML content is manipulated to mine cryptocurrency (that is, cryptojacking). We additionally detect TLS man-in-the-middle (MitM) attacks, and discover numerous instances in which binaries fetched through proxies were modified to include remote access trojans and other forms of malware. As a point of comparison, we conduct and discuss a similar measurement study of the behavior of Tor exit relays. We find no instances in which Tor relays performed TLS MitM or manipulated content, suggesting that Tor offers a far more reliable and safe form of proxied communication.
16 citations
TL;DR: This work compares residential and open proxies in various ways, including country-level and city-level analyses, to highlight their geospatial distributions, similarities, and differences against a large number of blacklists and categories therein, i.e., spam and maliciousness analysis, to understand their characteristics and attributes.
Abstract: Proxy servers act as an intermediary and a gateway between users and other servers on the Internet, and have many beneficial applications targeting the privacy of users, including bypassing server-side blocking, regional restrictions, etc. Despite the beneficial applications of proxies, they are also used by adversaries to hide their identity and to launch many attacks. As such, many websites restrict access from proxies, resulting in blacklists to filter out those proxies and to aid in their blocking. In this work, we explore the ecosystem of proxies by understanding their affinities and distributions comparatively. We compare residential and open proxies in various ways, including country-level and city-level analyses to highlight their geospatial distributions, similarities, and differences against a large number of blacklists and categories therein, i.e., spam and maliciousness analysis, to understand their characteristics and attributes. We conclude that, while aiming to achieve the same goal, residential and open proxies still have distinct characteristics warranting considering them separately for the role they play in the larger Internet ecosystem. Moreover, we highlight the correlation of proxy locality distribution and five country-level characteristics, such as their Internet censorship, political stability, and Gross Domestic Product (GDP).
8 citations
Patent•
25 Mar 2015
TL;DR: In this paper, a webpage content obtaining method and device is presented, which comprises the steps that a network request is obtained and includes a download address; the request is forwarded to an open proxy server; the webpage content obtained from a content server through the open proxy servers according to the download address is received.
Abstract: The invention provides a webpage content obtaining method and device. The method comprises the steps that a network request is obtained and includes a download address; the network request is forwarded to an open proxy server; the webpage content obtained from a content server through the open proxy server according to the download address is received. A positive proxy server can obtain webpage content required to be downloaded through a download terminal according to open proxy resources in the open proxy server in the network, the requirement for capturing the webpage content of a search engine can be met by fully utilizing IP address resources in the network, and the network content obtaining efficiency is improved.
7 citations
1 Jan 2018
TL;DR: Implementation of the honeypot based on the open proxy server allows to log all activity on the investigated proxy and classification of malicious users and the statistics of the attacks' sources are provided.
Abstract: Open proxy server is the service in computer networks which allows any user on the Internet to execute indirect requests to other network services. This technology can be used for different purposes, in particular for performing malicious attacks. Honeypot technology is a resource which represents a lure for an attacker. This article discusses implementation of the honeypot based on the open proxy server. This solution allows to log all activity on the investigated proxy. The focus of the work is devoted to the analysis of log data and identification of patterns of violator's behavior. As a result, the classification of malicious users and the statistics of the attacks' sources are provided.
6 citations
20 May 2014
TL;DR: The design and implementation of a highly flexible, open proxy that allows for dynamic reconfiguration at runtime and extensive performance measurements of proxy peering in LTE and UMTS type networks are reported on.
Abstract: Proxy Mobile IPv6 (PMIPv6) and its multicast extensions have been designed by the IETF as a deployment friendly mobility scheme. Although easy to implement, the basic multicast proxy solution suffers from unwanted delay and jitter due to suboptimal traffic flows. In this paper, we recap recent IETF work on peering extensions for multicast proxies and make the following two contributions. First we introduce the design and implementation of a highly flexible, open proxy that allows for dynamic reconfiguration at runtime. In particular, the system can support a variety of functional extensions including peering. Second we report on extensive performance measurements of proxy peering in LTE and UMTS type networks. Our findings indicate that a transparent deployment of the peering option significantly smoothes handovers and chokes delay variations throughout the access network.
4 citations
Related Topics (5)
Performance Metrics
| Year | Papers |
|---|---|
| 2020 | 1 |
| 2019 | 1 |
| 2018 | 3 |
| 2015 | 1 |
| 2014 | 1 |
| 2004 | 1 |